Lucene search

[email protected]NVD:CVE-2004-0333

HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0333

2004-11-2305:00:00

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.345 Low

EPSS

Percentile

97.1%

JSON

Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.

Affected configurations

NVD

Node

openpkgopenpkg

uudeviewuudeviewMatch0.5.18

uudeviewuudeviewMatch0.5.19

winzipwinzipMatch7.0

winzipwinzipMatch8.0

winzipwinzipMatch8.1

winzipwinzipMatch8.1sr1

Node

gentoolinuxMatch1.4

gentoolinuxMatch1.4rc1

gentoolinuxMatch1.4rc2

gentoolinuxMatch1.4rc3

References

secunia.com/advisories/10995

secunia.com/advisories/11019

www.ciac.org/ciac/bulletins/o-092.shtml

www.idefense.com/application/poi/display?id=76&type=vulnerabiliti&flashstatus=true

www.kb.cert.org/vuls/id/116182

www.openpkg.org/security/OpenPKG-SA-2004.006-uudeview.html

www.osvdb.org/4119

www.securityfocus.com/bid/9758

www.winzip.com/fmwz90.htm

exchange.xforce.ibmcloud.com/vulnerabilities/15336

exchange.xforce.ibmcloud.com/vulnerabilities/15490

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.345 Low

EPSS

Percentile

97.1%

JSON

Related for NVD:CVE-2004-0333

nessus1 debiancve1 openvas3 cve1 cvelist1